How about "mole" (taking a term from the spy arena)?
I suppose "spy" could be used but "mole" sounds better. After all, ANY
software which installs itself on my system without my knowledge and which
passes information either automatically or on request without my knowledge
is acting against my wishes.
A "mole" is a double agent who establishes a "cover" long before starting to
work. So, "mole" might not exactly fit all usages. PCAnywhere isn't in the
same class as this since it is specifically and knowingly installed, easily
user controlled or disabled, doesn't perform beyond what is clearly
documented (even though it allows another to take over the system) and
easily detectable.
One could argue, and I don't think its worth it, that if BO is installed as
part of a game, that it isn't really a "mole" in that case but the
game/utility people certainly should be accused of spying. Installing an
administrative utility on someones system without their knowledge and
permission is definitely not desired.
Incidentally, many Java/ActiveX applets/components may also fit into the
"mole" catagory regardless of their intent.
> -----Original Message-----
> From: Mullen, Patrick [SMTP:[EMAIL PROTECTED]]
> Sent: Thursday, October 28, 1999 2:49 PM
> To: 'Michael H. Warfield'; Elaine -HFB- Ashton
> Cc: Bill Lavalette -=- Operations NdrsNet NOC/CERT; 'Jason Axley';
> '[EMAIL PROTECTED]'
> Subject: RE: BO2k source code
>
> > It may or may not be a "trojan horse", but it is definitely a
> > trojan. (The Trojans hid in the horse, remember.) The thing gets
> > wrapped up with games and utilities and worms and other nasties which
> > allow it to be propagated to unsupecting chumps who are stupid enough
> > to run active content they receive in the mail or off of insecure web
> > sites.
> >
>
> Didn't you just prove yourself wrong? Back Orifice is not
> wrapped in any game or utility or anything other than
> social engineering. There may be versions out which are
> trojans where someone tacked it onto the end of another
> program, but in its original form all it (BO, anyway) does
> is delete the executable after installation.
>
> Personally, I don't know what security term I would use
> on Back Orifice. It's not a trojan because its intent
> is clearly defined (except to the unsuspecting luser).
> Mayhaps it's simply a network administration tool for
> Windows which can be used for nefarious deeds.
>
> I'm just glad no one has said "It's not a trojan, it's
> a virus!!" ;-)
>
>
> ~Patrick
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
